IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.
About the role
- Information Security professional managing governance, audit, and compliance in banking domain. Collaborating across teams to enhance security posture and control effectiveness.
Responsibilities
- Oversee and maintain governance over information security controls across all technology and business areas.
- Collaborate with internal stakeholders, risk management, compliance, and external auditors to facilitate audits and assessments.
- Manage the full lifecycle of audit findings, including documentation, remediation, tracking, and closure.
- Review and assess the design and operational effectiveness of security controls to ensure compliance with organizational and regulatory standards.
- Partner with business and IT teams to identify control gaps, recommend improvements, and monitor remediation progress.
- Support periodic control reviews, governance meetings, and reporting activities.
- Contribute to the continuous enhancement of information security frameworks, policies, and procedures.
Requirements
- 12 + years of experience in Information Security, preferably within the banking or financial services sector.
- Bachelor's or master's degree in information security, Computer Science, or a related field.
- Strong understanding of information security controls frameworks (e.g., ISO 27001, NIST, COBIT).
- Experience working directly with internal and external auditors and managing end-to-end audit processes.
- Proven ability to work cross-functionally and liaise with multiple teams including risk, compliance, IT, and business functions.
- Excellent communication, stakeholder management, and analytical skills.
Benefits
- Best in class leave policy
- Gender neutral parental leaves
- 100% reimbursement under childcare assistance benefit (gender neutral)
- Sponsorship for Industry relevant certifications and education
- Employee Assistance Program for you and your family members
- Comprehensive Hospitalization Insurance for you and your dependents
- Accident and Term life Insurance
- Complementary Health screening for 35 yrs. and above
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Security Officer ensuring safety and security of Yankee Candle assets and personnel. Responsiblities include monitoring, patrols, incident response, and safety training at the corporate campus.
Senior Specialist in Information Security Governance, Risk & Compliance at Cellulant, driving information security, privacy, and compliance standards within BFSI context.
Cloud Security & Application Security Engineer at Cellulant enhancing security across cloud - native platforms and applications. Working in a hybrid role to support a leading payment service provider in Africa.
IT Audit Consultant joining Baker Tilly to manage technology risks for clients, offering strategic advice and audit support. Engaging with client executives to ensure compliance and operational efficacy.
Senior Health and Safety Advisor overseeing health and safety on construction projects for Aecon. Ensuring compliance with SST legislation and promoting zero accident culture.
Senior Information Security Specialist executing Daikin Europe’s Information Security strategy. Collaborating with leadership to ensure our systems and services remain secure and compliant with regulations.
Experienced Information Security Officer at Daikin responsible for defining Information Security strategy and ensuring compliance with regulatory frameworks. Collaborating with external specialists and mentoring junior team members in EMEA.
Security Specialist ensuring the protection of company and government assets. Conducting daily security functions and providing technical support while maintaining compliance with regulations.
Industrial Security Specialist conducting daily security functions and providing technical support within Booz Allen. Focused on protecting company and government assets while handling classified materials.